Skip to main content

Pixwel SSL config

What’s what

Here are the certs, which are automatically configured: etc/ssl/private/pixwel.key - private PEM issued by RapidShare. /etc/ssl/certs/pixwel.crt - public PEM including certificate chain. Looks something like: 
-----BEGIN CERTIFICATE-----
Pixwel one
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
An unidentified intermediate certificate
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
RapidSSL SHA-2 (under SHA-2 Root) cert
-----END CERTIFICATE-----
At the time of writing, we are using RapidSSL SHA-2 (under SHA-2 Root) cert as the root certificate.

Verifying the certificates

Using the following tools: Verify that the following URLs are set up correctly with SSL:
  • staging.pixwel.com
  • notifications.pixwel.com
  • platform.pixwel.com
  • jenkins.pixwel.com

Gotchas / SSL on ELB

The current SSL cert at the time of writing is named pixwel-ssl-gavtest-1 (IAM) - this is because I had a few failed attempts at creating it as it’s finicky with how it likes the certificates pasted in. Basically, paste the private key in the private box, then the top of the cert chain in the public key, then the rest of the cert chain in the cert chain field. AWS ELB SSL configuration
Back to docs index | Next page in recommended reading order >>